(MS14-071) Vulnerability in Windows Audio Service Could Allow Elevation of Privilege (3005607)
Publish date: 14 de noviembre de 2014
Gravedad: High
Identificadores de CVE : CVE-2014-6322
Fecha recomendada: 14 de noviembre de 2014
Descripción
This update resolves an elevation of privilege vulnerability that exists in the Windows audio service component when it validates certain permissions that may allow script execution. The update resolves this by adding certain permission validations.
Software y versión afectados
- Windows Vista Service Pack 2
- Windows Vista x64 Edition Service Pack 2
- Windows Server 2008 for 32-bit Systems Service Pack 2
- Windows Server 2008 for x64-based Systems Service Pack 2
- Windows Server 2008 for Itanium-based Systems Service Pack 2
- Windows 7 for 32-bit Systems Service Pack 1
- Windows 7 for x64-based Systems Service Pack 1
- Windows Server 2008 R2 for x64-based Systems Service Pack 1
- Windows Server 2008 R2 for Itanium-based Systems Service Pack 1
- Windows 8 for 32-bit Systems
- Windows 8 for x64-based Systems
- Windows 8.1 for 32-bit Systems
- Windows 8.1 for x64-based Systems
- Windows Server 2012
- Windows Server 2012 R2
- Windows RT[
- Windows RT 8.1